Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

Borrar filtros
CVE ID Publicado Severidad CVSS Descripción
CVE-2026-52692 2026-06-15 HIGH 7.5 Unauthenticated Sensitive Data Exposure in Affiliates Manager
CVE-2026-49781 2026-06-15 CRITICAL 9.8 Unauthenticated PHP Object Injection in OttoKit
CVE-2026-49780 2026-06-15 HIGH 8.8 Customer Privilege Escalation in Dokan
CVE-2026-49776 2026-06-15 CRITICAL 9.3 Unauthenticated SQL Injection in GPTranslate – Multilingual AI Translation for WordPress: Automatically Translate Websites
CVE-2026-49775 2026-06-15 MEDIUM 6.5 Unauthenticated Broken Access Control in Welcart e-Commerce
CVE-2026-49773 2026-06-15 MEDIUM 6.5 Subscriber Cross Site Scripting (XSS) in FV Flowplayer Video Player < 7.5.51.7212 versions.
CVE-2026-49770 2026-06-15 CRITICAL 9.8 Unauthenticated PHP Object Injection in WP Travel Engine
CVE-2026-49769 2026-06-15 CRITICAL 9.8 Unauthenticated PHP Object Injection in wpForo Forum
CVE-2026-49768 2026-06-15 CRITICAL 9.8 Unauthenticated PHP Object Injection in Happyforms
CVE-2026-49766 2026-06-15 CRITICAL 9.9 Subscriber Arbitrary File Deletion in WP User Manager
CVE-2026-49765 2026-06-15 CRITICAL 9.8 Unauthenticated PHP Object Injection in Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms
CVE-2026-49764 2026-06-15 CRITICAL 9.8 Unauthenticated Broken Authentication in RegistrationMagic
CVE-2026-49763 2026-06-15 CRITICAL 9.8 Unauthenticated PHP Object Injection in Integration for Contact Form 7 HubSpot
CVE-2026-49112 2026-06-15 HIGH 7.5 Unauthenticated Path Traversal in Shared Files
CVE-2026-49110 2026-06-15 HIGH 7.5 Unauthenticated Broken Authentication in Upsell Order Bump Offer for WooCommerce
CVE-2026-49109 2026-06-15 CRITICAL 9.8 Unauthenticated PHP Object Injection in Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms
CVE-2026-49106 2026-06-15 CRITICAL 9.8 Unauthenticated PHP Object Injection in Integration for Contact Form 7 and Constant Contact
CVE-2026-49105 2026-06-15 CRITICAL 9.8 Unauthenticated PHP Object Injection in WP Zendesk for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms
CVE-2026-49104 2026-06-15 CRITICAL 9.8 Unauthenticated PHP Object Injection in Integration for Keap/infusionsoft and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms
CVE-2026-49085 2026-06-15 CRITICAL 9.8 Unauthenticated PHP Object Injection in WP Insightly for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms
CVE-2026-49083 2026-06-15 HIGH 7.5 Contributor Privilege Escalation in LatePoint
CVE-2026-49082 2026-06-15 HIGH 7.4 Subscriber Sensitive Data Exposure in Chatway Live Chat – AI Chatbot, Customer Support, FAQ & Helpdesk Customer Service & Chat Buttons
CVE-2026-49078 2026-06-15 HIGH 7.5 Unauthenticated Other Vulnerability Type in WP Travel Engine
CVE-2026-49070 2026-06-15 HIGH 7.5 Unauthenticated Broken Access Control in Knit Pay
CVE-2026-49068 2026-06-15 HIGH 7.5 Subscriber Sensitive Data Exposure in Coupon Affiliates
CVE-2026-49067 2026-06-15 CRITICAL 9.3 Unauthenticated SQL Injection in Advanced 301 and 302 Redirect
CVE-2026-49066 2026-06-15 HIGH 7.5 Unauthenticated Sensitive Data Exposure in Conekta Payment Gateway
CVE-2026-49065 2026-06-15 HIGH 8.2 Unauthenticated Broken Access Control in Hippoo Mobile App for WooCommerce
CVE-2026-49063 2026-06-15 HIGH 7.3 Unauthenticated Privilege Escalation in Listdom
CVE-2026-49061 2026-06-15 HIGH 7.5 Unauthenticated Arbitrary File Download in WPC Product Options for WooCommerce
CVE-2026-49056 2026-06-15 HIGH 7.5 Unauthenticated Sensitive Data Exposure in WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels
CVE-2026-49055 2026-06-15 HIGH 7.1 Unauthenticated Cross Site Scripting (XSS) in Drag and Drop Multiple File Upload – Contact Form 7
CVE-2026-49043 2026-06-15 MEDIUM 4.7 Unauthenticated Cross Site Request Forgery (CSRF) in WP Migrate Lite
CVE-2026-48970 2026-06-15 HIGH 8.1 Unauthenticated Broken Authentication in Really Simple SSL
CVE-2026-48966 2026-06-15 HIGH 7.1 Unauthenticated Cross Site Scripting (XSS) in Funnel Builder by FunnelKit
CVE-2026-48965 2026-06-15 MEDIUM 6.5 Subscriber Sensitive Data Exposure in XCloner
CVE-2026-48964 2026-06-15 HIGH 8.5 Subscriber SQL Injection in ELEX WordPress HelpDesk & Customer Ticketing System
CVE-2026-48889 2026-06-15 HIGH 8.8 Subscriber Privilege Escalation in Amelia
CVE-2026-48887 2026-06-15 MEDIUM 6.5 Unauthenticated Broken Access Control in JS Help Desk
CVE-2026-48886 2026-06-15 CRITICAL 9.3 Unauthenticated SQL Injection in JS Help Desk
CVE-2026-48885 2026-06-15 HIGH 7.1 Unauthenticated Cross Site Scripting (XSS) in HollerBox
CVE-2026-48883 2026-06-15 HIGH 7.5 Unauthenticated Broken Access Control in WPC Product Bundles for WooCommerce
CVE-2026-48882 2026-06-15 HIGH 8.5 Subscriber SQL Injection in WP Time Slots Booking Form
CVE-2026-48881 2026-06-15 CRITICAL 9.1 Unauthenticated Broken Access Control in TrueBooker
CVE-2026-48880 2026-06-15 MEDIUM 6.5 Subscriber Cross Site Scripting (XSS) in WP Job Portal
CVE-2026-48878 2026-06-15 MEDIUM 6.5 Subscriber Sensitive Data Exposure in Visual Link Preview
CVE-2026-48876 2026-06-15 HIGH 7.1 Unauthenticated Cross Site Scripting (XSS) in Stop Spammers
CVE-2026-48874 2026-06-15 HIGH 8.5 Subscriber SQL Injection in GamiPress
CVE-2026-48873 2026-06-15 HIGH 7.5 Unauthenticated Broken Access Control in Montonio for WooCommerce
CVE-2026-48872 2026-06-15 HIGH 7.5 Unauthenticated Sensitive Data Exposure in EmbedPress
« Anterior Página 95 de 4528 Siguiente »